angularjs - Solution to replace clear text with encrypted form in request and response payload at rest -


i apologize horrible title. not think of better. best in explaining question here.

i have existing rest api endpoints work clear id fields, taskid, userid, profileid, etc. writing angularjs based front-end, call these existing api endpoints get/post data. e.g. once user logins, api endpoint used validation login information, returns userid (unique identifier of logged-in user) in response. next, userid came last call's response used fetch list of tasks (each identified uniquely taskid) associated user. , futrther, taskid used fetch task details.

in above communication, ids - userid, taskid on client side in clear. want implement solution without changing apis, can replace clear ids encrypted tokens:

  1. user logins username/password. api returns user object userid , other ids in object encrypted. so, there response transformer encrypts pre-defined id fields before response sent client
  2. now, frontend component use encrypted id further calls. calls api /myapi/tasks/user/{encrypteduserid} tasks user.
  3. there filter on server, intercepts api requests , decrypts pre-defined id fields before passing request real api method.

my questions:

  1. is there open source api/framework available, can leverage implement solution?
  2. is there different/better way achieve same goals trying achieve solution?
  3. any reference implementation can refer implementing request interceptor , response transformer, encrypts/decrypts pre-defined id fields depending upon object being transmitted?

any inputs/suggestions/comments welcome , appreciated. please let me know if guys think question/topic belong elsewhere.


Comments

Post a Comment

Popular posts from this blog

node.js - Using Node without global install -

i'm working on few node & electron (atom shell) projects , i'm curious how them work without user having install node globally. i've seen few applications including node directory in project contains node.exe binary. how go setting node project use binary? edit: thought should add, i've searched everywhere answer this, unrelated results.
Read more

How to access a php class file from PHPFox framework into javascript code written in simple HTML file? -

i've website developed using phpfox v3.0.7 . now i'm trying implement 'sse(server sent events)' 1 of php files. reference i'm giving below necessary code part of file. file titled process.class.php , present @ location /var/www/module/notification/include/service/process.class.php present on server having ip http://34.124.40.142/ . <?php /** * [phpfox_header] */ header('content-type: text/event-stream'); header('cache-control: no-cache'); defined('phpfox') or exit('no dice!'); /** * * * @copyright [phpfox_copyright] * @author raymond benc * @package phpfox_service * @version $id: service.class.php 67 2009-01-20 11:32:45z raymond_benc $ */ class notification_service_process extends phpfox_service { /** * class constructor */ public function __construct() { $this->_stable = phpfox::gett('notification'); } public function add($...
Read more

java - Null response to php query in android, even though php works properly -

Image
table i'm trying retrieve above data using 2 php files below. want pass email parameter , return bets user = email. work fine when tested advanced rest client, problem not php. however, when try through android 2 java classes below, null pointer exception (logcat below) , json object returned null. i'm not sure error is, think i'm not passing parameter php , that's why it's producing null response. logcat 05-31 15:10:50.227 26074-26074/com.example.albert.betterapp e/androidruntime﹕ fatal exception: main process: com.example.albert.betterapp, pid: 26074 java.lang.runtimeexception: unable start activity componentinfo{com.example.albert.betterapp/com.example.albert.betterapp.displayallbets}: java.lang.nullpointerexception @ android.app.activitythread.performlaunchactivity(activitythread.java:2292) @ android.app.activitythread.handlelaunchactivity(activitythread.java:2350) @ android.app.activitythread.acce...
Read more